<feed xmlns='http://www.w3.org/2005/Atom'>
<title>buildroot/package/audiofile/0006-Actually-fail-when-error-occurs-in-parseFormat.patch, branch 2018.02</title>
<subtitle>OpenPOWER buildroot sources</subtitle>
<id>https://git.raptorcs.com/git/buildroot/atom?h=2018.02</id>
<link rel='self' href='https://git.raptorcs.com/git/buildroot/atom?h=2018.02'/>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/'/>
<updated>2017-03-31T11:36:26+00:00</updated>
<entry>
<title>audiofile: add security patch for CVE-2017-6831</title>
<updated>2017-03-31T11:36:26+00:00</updated>
<author>
<name>Peter Korsgaard</name>
<email>peter@korsgaard.com</email>
</author>
<published>2017-03-30T21:03:34+00:00</published>
<link rel='alternate' type='text/html' href='https://git.raptorcs.com/git/buildroot/commit/?id=bd5f84d301c4e74ca200a9336eca88468ec0e1f3'/>
<id>urn:sha1:bd5f84d301c4e74ca200a9336eca88468ec0e1f3</id>
<content type='text'>
Heap-based buffer overflow in the decodeBlockWAVE function in IMA.cpp in
Audio File Library (aka audiofile) 0.3.6 allows remote attackers to cause a
denial of service (crash) via a crafted file.

https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-imadecodeblockwave-ima-cpp
https://github.com/mpruett/audiofile/issues/35

Signed-off-by: Peter Korsgaard &lt;peter@korsgaard.com&gt;
</content>
</entry>
</feed>
